Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

Thank You

Downloading ExtraHop
MD5 checksum (extrahop_12.tgz) 1bfb945aaf2f84ac2a718820cb6378c6 MD5 checksum (extrahop_11.tgz) c3dff0b91806a4b34b94112b69437633 MD5 checksum (extrahop_10.tgz) 3e05ffba554f8408679665eeb011b72e
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate

Description required

ExtraHop

Overview
Details
The Wire Data App for ExtraHop imports real-time network, web services, database, storage, and memcache metrics into Splunk that are otherwise difficult or impossible to log. To work, this app requires an ExtraHop appliance.

The ExtraHop platform is the most scalable and functional solution for real-time transaction analysis. ExtraHop gathers data passively by observing communication on the wire in cases where logs are sparse or not readily available, such as in mainframes. With this app, ExtraHop users can send policy-based events to Splunk, including consistently formatted logs across systems from different vendors, high-priority anomalies, and correlated cross-tier events.

The ExtraHop platform is a physical or virtual appliance that analyzes network traffic and extracts network, web, VDI, database, and storage performance metrics at speeds of up to 20Gbps. ExtraHop can send real-time events into Splunk based on the result of over-the-wire, L2-L7 packet analysis. ExtraHop complements Splunk in several ways for real-time IT operations analytics:

  1. ExtraHop gathers wire data passively by observing communication on the network in cases where logs are sparse or not readily available, such as in mainframes.
  2. ExtraHop augments Splunk host-based analysis with consistently formatted logs across systems from different vendors, high-priority anomalies, and correlated cross-tier events.
  3. Splunk's Big Data capabilities serve as a platform for long-term trending of ExtraHop metrics.

Download a free version of the ExtraHop platform.

Real-Time IT Operations Analytics

This sample application demonstrates integration for several key protocols, such as HTTP, database, memcache, and CIFS storage. Additional protocols such as NFS, DNS, and others are available for integration.

This app requires requires Splunk software to be installed on your system first. You will also need an ExtraHop appliance installed along with the "ExtraHop Splunk Bundle" containing the appropriate triggers and rsyslog connector configurations. More information is available on the ExtraHop customer forum: <https: forum.extrahop.com="" question="" 75="" extrahop-splunk-bundle="">

Web Metrics - Responses over time, average transaction response times, top status codes, web traffic throughput.
83413

Web Services Metrics - Events over time, top active account numbers, top active users, and other customizable metrics such as duplicate order IDs.
92741

Database Metrics - Responses over time, average transaction response times, errors, top methods, top users, and more.
83417

Storage Metrics - Responses over time, average transaction response times, errors, top methods, top users, and more.
83414

Memcache Metrics - Transactions over time, average access time, errors, message sizes, top response codes, top methods.
83416

Release Notes

Version: 1.2

Added a time range picker element on every page and certified the app to run on Splunk 5.0Beta (build 136169).

Oct. 4, 2012, 3:56 a.m.

Platform Independent

6.0, 5.0, 4.3

Version: 1.1

This release fixes an issue that may result in missing views in some cases.

Aug. 3, 2012, 9:56 p.m.

Platform Independent

5.0, 4.3

Version: 1.0

This is the first release of the ExtraHop Splunk App.

July 23, 2012, 10:44 p.m.

Platform Independent

5.0, 4.3

37
Installs
766
Downloads
Share Subscribe LOGIN TO DOWNLOAD
Version
1.2
Category
IT Operations
Product Support
Splunk Enterprise
Content Type
App
Splunk Versions
6.0
5.0
Licensing
Creative Commons BY 3.0
Platforms
Platform Independent
Built by
Tanya Bragin

Subscribe Share

Splunk Certified

Splunk's App Certification program uses a specific set of criteria to evaluate the level of quality, usability and security your app offers to its users. In addition, we evaluate the documentation and support you offer to your app's users.

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 50GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps and add-ons from Splunk, our partners and our community. Find an app or add-on for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
© 2005-2016 Splunk Inc. All rights reserved.
Splunk®, Splunk>®, Listen to Your Data®, The Engine for Machine Data®, Hunk®, Splunk Cloud™, Splunk Light™, SPL™ and Splunk MINT™ are trademarks and registered trademarks of Splunk Inc. in the United States and other countries. All other brand names, product names, or trademarks belong to their respective owners.